Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/XF1Xj0chLGaYIC366lz6vMrOMV0.roa
File: XF1Xj0chLGaYIC366lz6vMrOMV0.roa (raw, json)
Hash identifier: hAqrfvGy9clOSWVzYrVHK+w80WZZf0MNZW8crq+GYK8=
Subject key identifier: 5C:5D:57:8F:47:21:2C:66:98:20:2D:FA:EA:5C:FA:BC:CA:CE:31:5D
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01881B5006B3C8D89E8A0118751AE2E17F0B
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/XF1Xj0chLGaYIC366lz6vMrOMV0.roa
Signing time: Sun 14 May 2023 17:30:09 +0000
ROA not before: Sun 14 May 2023 17:30:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 46.232.64.0/24 maxlen: 24
46.232.65.0/24 maxlen: 24
46.232.71.0/24 maxlen: 24
46.232.67.0/24 maxlen: 24
46.232.69.0/24 maxlen: 24
46.232.66.0/24 maxlen: 24
46.232.70.0/24 maxlen: 24
46.232.68.0/24 maxlen: 24
46.232.72.0/24 maxlen: 24
46.3.89.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.88.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
149.126.246.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.226.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.185.0/24 maxlen: 24
46.3.186.0/24 maxlen: 24
46.3.184.0/24 maxlen: 24
46.3.190.0/24 maxlen: 24
46.3.188.0/24 maxlen: 24
46.3.189.0/24 maxlen: 24
46.3.191.0/24 maxlen: 24
46.3.187.0/24 maxlen: 24
46.3.101.0/24 maxlen: 24
46.3.116.0/22 maxlen: 24
46.3.120.0/21 maxlen: 21
46.3.134.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
46.3.200.0/24 maxlen: 24
46.3.202.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.220.0/23 maxlen: 23
46.3.230.0/23 maxlen: 23
46.3.246.0/24 maxlen: 24
46.3.245.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.250.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1b:50:06:b3:c8:d8:9e:8a:01:18:75:1a:e2:e1:7f:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: May 14 17:30:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c5d578f47212c6698202dfaea5cfabccace315d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bb:fd:01:f3:ca:be:e7:95:7e:aa:49:d0:50:
06:b3:cf:2c:7c:5d:42:bd:0c:d0:00:95:9a:ee:60:
a4:57:a5:83:74:9a:0e:bc:b0:d4:ad:f0:ed:e7:e9:
c7:76:32:ac:b9:db:25:d5:27:f3:90:d8:ee:a3:23:
e4:3c:cf:2c:9e:c1:7c:50:20:8c:17:63:55:a3:b1:
9a:24:27:8f:2c:b3:62:9b:7d:ed:1e:34:be:89:27:
67:94:41:d6:37:9a:ea:8d:48:21:d5:95:82:cd:0b:
c3:fa:9c:28:f5:35:35:74:38:4d:7c:0b:42:37:d0:
d8:b3:c9:22:9b:8b:05:3d:be:8a:83:ff:cd:2d:fa:
af:46:0b:84:a3:ab:63:d4:5f:e0:a1:bb:18:dd:0b:
99:86:52:2a:70:b2:ed:09:68:3a:0c:7f:f2:7c:67:
9b:4a:9c:46:6f:9c:4e:f8:40:fc:e1:ce:40:f8:6d:
33:5c:6a:29:7a:2b:68:7d:3e:a4:78:14:7f:d3:49:
b7:c5:50:2e:ae:8f:3b:3c:30:da:50:4e:ba:a2:8b:
41:4c:03:32:cd:9b:06:e1:f6:75:8b:31:85:0f:ba:
f6:fe:48:fe:4a:8a:79:46:2b:ee:07:46:d1:09:23:
35:85:9c:38:f0:65:a9:b7:9f:0e:20:de:74:8c:59:
a5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:5D:57:8F:47:21:2C:66:98:20:2D:FA:EA:5C:FA:BC:CA:CE:31:5D
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/XF1Xj0chLGaYIC366lz6vMrOMV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.88.0/22
46.3.101.0/24
46.3.116.0-46.3.127.255
46.3.134.0/24
46.3.160.0/22
46.3.184.0/21
46.3.200.0-46.3.202.255
46.3.220.0/23
46.3.230.0/23
46.3.245.0-46.3.246.255
46.3.248.0/21
46.232.64.0-46.232.72.255
149.126.226.0/24
149.126.228.0/24
149.126.231.0/24
149.126.242.0/24
149.126.244.0-149.126.250.255
149.126.252.0/24
Signature Algorithm: sha256WithRSAEncryption
56:f8:79:5e:67:e6:22:97:d2:6f:40:0c:48:44:4e:9f:4f:bc:
15:94:e6:d7:6c:ae:d7:cb:ba:67:5b:f8:32:11:c5:60:e1:19:
ce:2a:f5:fb:00:cd:1f:29:3f:42:d6:99:05:11:31:30:88:08:
13:ca:00:24:1b:15:a5:0f:9a:f9:d7:38:79:72:f4:e4:10:bd:
70:ec:11:64:bf:1f:e7:c7:d7:e8:74:45:42:46:32:12:04:f4:
13:2e:bc:48:a2:cc:7e:8a:fa:fa:64:92:6e:a2:c9:52:53:1d:
df:5f:20:c0:9e:38:74:b9:28:11:7d:75:4b:fd:4e:a3:20:0c:
9b:ea:5f:32:4c:98:db:d7:1a:1d:27:9a:57:0f:2c:d5:17:60:
0d:5a:d7:60:d6:45:f7:c7:e2:b0:69:22:d8:84:06:99:11:45:
85:1c:e9:53:24:26:b5:44:1c:ed:65:79:3b:29:d7:56:28:a5:
e6:8f:50:16:a1:f3:3c:be:bf:6c:d5:83:6b:6a:ef:50:9c:03:
93:00:d5:8f:ae:03:94:68:80:ec:1f:34:5a:71:f5:cb:90:c6:
3b:fb:69:4a:11:0c:26:95:15:07:7e:72:34:14:01:7f:32:be:
4e:9f:7a:95:2e:95:ce:21:67:ce:d0:0e:65:d8:f8:ba:cb:17:
04:5f:e4:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org